Dedicated to covering high-end cloud computing
in science, industry and the datacenter
September 27, 2010
NC State, IBM Researchers Send Hypervisor Security Into “Stealth Mode”
Although it’s currently in the prototype phase, there is some hope on the horizon for those concerned with the far-off (but nonetheless quite unsettling) possibility of hypervisor attacks, which if successfully executed, would threaten the integrity of a shared virtualized environment.
Researchers from North Carolina State University and IBM have created a security tool that works in stealth mode to monitor for hypervisor attacks without attackers being aware that such a tool is in place. The software, called HyperSentry, functions outside of the hypervisor to examine, in real time, when and if the hypervisor has been attacked.
One of the lead researchers on the project, Dr. Peng Ning, claims that the tool measures a hypervisor’s integrity without the hypervisor knowing it’s being measured, which he claims offers some “peace of mind about the system’s integrity.”
Given the relative sophistication of malware it is possible for some of it to slip past current security monitoring tools and software that only sees the memory where the hypervisor is stationed and can then remain undetected by altering pieces of the CPU. HyperSentry actually has a view into the hypervisor and can see where it is located at all times, even if an attack has altered its location.
The possibility of hypervisor attacks is one of the more often-cited reasons why there is a great deal of concern about a multitenant environment, particularly for those who are considering taking their mission-critical applications outside of the firewall. Still, it is worth repeating that such attacks are very rare but, as Dr. Peng Ning reminded, “if there was one, the consequences would be quite serious. Think about Amazon with so many machines running and so many things being attacked.”
Full story at Dark Reading
Related Articles
Discussion
There are 0 discussion items posted.
|
Join the Discussion |
RSS Feeds
Feeds by Topic
Feeds by Content Type
Subscribe to All Content
This Week's Headlines
Most Read Features
- On the Verge of Cloud 2.0
- The Evolution of the Virtual Platform
- Overcoming the Cloud Security Barrier for Financial Services
- Research Roundup: Toward a More Efficient Cloud
- Research Roundup: Prepping Clouds for Data Influx
- Avoiding Scientific Computing Bottlenecks in the Cloud
- CERN, Google, and the Future of Global Science Initiatives
Most Read Around the Web
- Dell Cloud Clinical Archive Hits 6 Billion
- HPC and the True Cost of Cloud
- In Support of Cloud-based Rendering
- Running Computational Fluid Dynamics in the Cloud
- Internet2 Awards Program Seeks Innovative Applications
Most Read This Just In
- OVH.com Launches North America's First Dedicated VMware Cloud Hosting
- IBM Named Diamond Sponsor of 12th International Cloud Expo
- Amazon Web Services Launches Certification Program for Cloud Computing Professionals
- Internet2 Expands NET+ with Amazon Web Services
- OpenNebula 4.0 Released
- Fujitsu Announces Vertically Integrated Virtualization and Cloud Platform
- Trend Micro Improves Cloud Security for Amazon Web Services
- Ubuntu Server 13.04 Now Available
- Cisco MDS Storage Switches Certified By Hitachi Data Systems
- High Availability IaaS Now Standard for ProfitBricks
Feature Articles
CometCloud: Using a Federated HPC-Cloud to Understand Fluid Flow in Microchannels
The ever-growing complexity of scientific and engineering problems continues to pose new computational challenges. Thus, we present a novel federation model that enables end-users with the ability to aggregate heterogeneous resource scale problems. The feasibility of this federation model has been proven, in the context of the UberCloud HPC Experiment, by gathering the most comprehensive information to date on the effects of pillars on microfluid channel flow.
Read more...
CERN, Google, and the Future of Global Science Initiatives
Large-scale, worldwide scientific initiatives rely on some cloud-based system to both coordinate efforts and manage computational efforts at peak times that cannot be contained within the combined in-house HPC resources. Last week at Google I/O, Brookhaven National Lab’s Sergey Panitkin discussed the role of the Google Compute Engine in providing computational support to ATLAS, a detector of high-energy particles at the Large Hadron Collider (LHC).
Read more...
Avoiding Scientific Computing Bottlenecks in the Cloud
Frank Ding, engineering analysis & technical computing manager at Simpson Strong-Tie, discussed the advantages of utilizing the cloud for occasional scientific computing, identified the obstacles to doing so, and proposed workarounds to some of those obstacles.
Read more...
Sponsored Whitepapers
Best Practices in Big Data Storage
05/10/2013 | Cleversafe, Cray, DDN, NetApp, & Panasas | From Wall Street to Hollywood, drug discovery to homeland security, companies and organizations of all sizes and stripes are coming face to face with the challenges – and opportunities – afforded by Big Data. Before anyone can utilize these extraordinary data repositories, however, they must first harness and manage their data stores, and do so utilizing technologies that underscore affordability, security, and scalability.
Exploring the Potential of Heterogeneous Computing
04/02/2012 | AMD | Developers today are just beginning to explore the potential of heterogeneous computing, but the potential for this new paradigm is huge. This brief article reviews how the technology might impact a range of application development areas, including client experiences and cloud-based data management. As platforms like OpenCL continue to evolve, the benefits of heterogeneous computing will become even more accessible. Use this quick article to jump-start your own thinking on heterogeneous computing.
Sponsored Multimedias
Newsletters
HPC Job Bank
- Executive Director ? E-iRODS Consortium
UNC-CH - RENCI - Senior HPC Software Analyst / Network Engineer
A*STAR Computational Resource Centre (A*CRC) - Systems Analyst 2
University of New Mexico - Visualization Interfaces & Applications Group Manager [Research Associate]
Texas Advanced Computing Center - Web Developer (Research Engineering/Scientist Associate III)
Texas Advanced Computing Center - Mobile Application Developer [Research Engineering/Scientist Associate III]
Texas Advanced Computing Center - Visit the HPCwire Job Bank
Featured Events
- May 28, 2013
- May 31, 2013
Bio-IT World Asia
Marina Sands Bay,
Singapore
- June 10, 2013
- June 13, 2013
Cloud & Big Data Expo
New York City, NY
United States
- June 16, 2013
- June 20, 2013
ISC'13
Leipzig,
Germany
.gif)
- June 17, 2013
- June 18, 2013
Forecast 2013
San Francisco, CA
United States
- June 18, 2013
- June 18, 2013
5th Annual Cloud Slam 2013 Conference & Exhibition
Santa Clara, CA
United States
- June 26, 2013
- June 27, 2013
Cloud World Forum
London,
United Kingdom
